Archives for July 2017

Posted: 2 years ago by @pentestit4948 viewsUpdated: July 6, 2017 at 11:06 am

All of us know that Center for Internet Security offers CIS Security Benchmarks for multiple systems to safeguard them against an ever changing threat landscape. For Amazon Web Services (AWS) the current version can be found here: CIS Amazon Web Services Foundations Benchmark 1.1. This post is about a tool that helps you automate most of the benchmarks - Prowler. Read more about Prowler: An AWS CIS Benchmark Auditing & Hardening Tool!

There is a lot of fun offensive stuff being developed in PowerShell these days. An example is Invoke-Phant0m an excellent Microsoft Windows eventlog wiper. This post is about PSAttack, a framework which tries to include almost all Microsoft PowerShell scripts that can be used in a penetration test. Read more about PSAttack: A Offensive PowerShell Console!

Internal network exploitation is a completely different ballgame all together. Many resources are trusted by default and security restrictions are minimal in most cases. One such resource which lacks security restrictions is the Microsoft Windows Server Update Services (WSUS). I have seen internal networks which lack SSL protection, because it is "not needed" for internal Read more about WSUXploit: A Weaponized WSUS Exploit Script!

Posted: 2 years ago by @pentestit6471 viewsUpdated: July 4, 2017 at 12:08 am

As the title suggests, OSRFramework is an open source research framework that helps you glean data from multiple sources. This information can be most helpful in multiple OSINT engagements where you are trying to get as much information about a target - user, domain, phone number, DNS lookups, information leaks research, deep web search etc. Read more about OSRFramework: The Open Sources Research Framework!

Featured Post

Kali Linux 2019.1 is the latest Kali Linux release. This is the first 2019 release, which comes after Kali Linux 2018.4, that was made available in the month of October. This new release includes all patches, fixes, updates, and improvements since the last release – Kali Linux 2018.3, including a shiny new Linux kernel versionRead more about UPDATE: Kali Linux 2019.1 Release!